Kanboard is project management software that focuses on the Kanban methodology. The vuln is in app/Controller/ProjectPermissionController.php function addUser(). The users permission to add users to a project only get checked on the URL parameter project_id. If the user is authorized to add users to this project the request gets processed. The users permission for the POST BODY parameter project_id does not get checked again while processing. An attacker with the 'Project Manager' on a single project may take over any other project. The vulnerability is fixed in 1.2.37.
References
Link | Resource |
---|---|
https://github.com/kanboard/kanboard/commit/b6703688aac8187f5ea4d4d704fc7afeeffeafa7 | Patch |
https://github.com/kanboard/kanboard/security/advisories/GHSA-x8v7-3ghx-65cv | Exploit Vendor Advisory |
Configurations
History
24 Sep 2024, 13:59
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:kanboard:kanboard:*:*:*:*:*:*:*:* | |
First Time |
Kanboard kanboard
Kanboard |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.3 |
References | () https://github.com/kanboard/kanboard/commit/b6703688aac8187f5ea4d4d704fc7afeeffeafa7 - Patch | |
References | () https://github.com/kanboard/kanboard/security/advisories/GHSA-x8v7-3ghx-65cv - Exploit, Vendor Advisory |
07 Jun 2024, 14:56
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
06 Jun 2024, 16:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-06-06 16:15
Updated : 2024-09-24 13:59
NVD link : CVE-2024-36399
Mitre link : CVE-2024-36399
CVE.ORG link : CVE-2024-36399
JSON object : View
Products Affected
kanboard
- kanboard